U.S. online store PulseTV has disclosed a massive customer credit card breach.
According to a notice shared with the Maine Attorney General’s Office, more than 200,000 shoppers are affected.
The platform learned of the potential breach on March 8, 2021, when Visa contacted the platform to report unauthorized credit card transactions on the site.
After running several security checks and malware scans, PulseTV was unable to pinpoint any issues with their e-commerce site.
However, the problem continued a few months later when law enforcement contacted us about payment card fraud that appeared to have originated from pulsetv.com.
In response, the company has launched a new investigation with the help of third-party experts.
On November 18, 2021, investigators “learned that this website had been identified as a common purchase location for fraudulent MasterCard credit card transactions.
“Based on communications with the card brands, only customers who purchased items using credit cards on the website between November 1, 2019 and August 31, 2021 may have been affected. We believe this is likely.” – PulseTV
The information that may have been compromised is as follows.
- Full name
- Shipping address
- Email address
- Payment card number
- Payment card expiration date
- Card security code (CVV)
The above information is required for cardless transactions used when shopping online.
PulseTV customers who purchased from the site during the specified infringement period are advised to keep an eye on their bank statements for any unauthorized transactions.
The platform also announced that it is moving to a separate payment system, enabling two-factor authentication (2FA) for all accounts, and leveraging endpoint protection tools to increase network visibility and mitigate threats.
PulseTV claims that the investigation did not reveal any intrusion in its systems. However, the company’s system was a common point of entry for several fraudulent transactions.
This makes it unclear whether a hidden skimmer was planted on the website, or if the card was stolen from another merchant and used only to shop at PulseTV.
The stolen payment card may be used to purchase goods, which are then delivered to the package mule and then sold for cash.
Comments